More in this section

Forums / Developing with Sitefinity / SSL and SiteFinity

SSL and SiteFinity

5 posts, 0 answered
  1. Mike
    Mike avatar
    221 posts
    Registered:
    19 Aug 2008
    14 Oct 2008
    Link to this post
    Is there some information on SSL and SiteFinity. We must be able to secure a number of different pages/folder of our website. How would we do this if the site is developed using SiteFinity?

    Nugs
  2. SelAromDotNet
    SelAromDotNet avatar
    912 posts
    Registered:
    18 Jul 2012
    14 Oct 2008
    Link to this post
    assuming you have SSL correctly installed on your server, all you have to do is set "Require SSL" on the "More Options" section of each individual page. I don't believe you can secure an entire folder (page group) at once, but you can invidually set pages to require ssl and sitefinity will take care of making sure the page loads with ssl (https)
  3. Mike
    Mike avatar
    221 posts
    Registered:
    19 Aug 2008
    14 Oct 2008
    Link to this post
    That's great. Very easy to implement... I am a very concerned however about some of the posts i have been reading on the subject... Specifically http://www.sitefinity.com/support/forums/support-forum-thread/b1043S-bectba.aspx

    Having a non-secured-items warning popup on these pages is something we have worked hard to  eliminate and avoid on our current secured pages...

    My concern is due to the nature of SiteFinity this might be hard to avoid. Images, themes, controls and page templates are not secured and can not be loaded as secured (https) items... correct? This would create a senario where it is hard to avoid such warnings.

    I would be open to the idea of creating a second template for secured pages, a template that loads secured themes and images... Is this possible? Is it possible to tell SiteFinity to load the images and site resources as HTTPS items?

    It is imperitive that we avoid this ssl secured items warning, so any and all info on avoiding this that you can give me would be most helpfull.

    Nugs
  4. SelAromDotNet
    SelAromDotNet avatar
    912 posts
    Registered:
    18 Jul 2012
    14 Oct 2008
    Link to this post
    i encountered this problem ONLY when my linked files and resources were explicitly defined using http. if I used relative links like /scripts/myscript.js then I never got the prompt.

    I have pages that use custom themes and custom user controls for processing payments and account information, and all of them load correctly in ssl using https with NO prompts for unsecured items.

    so assuming you set up everything correctly, I don't think you should have a problem! hope this was helpful
  5. Georgi
    Georgi avatar
    3583 posts
    Registered:
    28 Oct 2016
    15 Oct 2008
    Link to this post
    Hello,

    The warnings come from the client, so we could not prevent this from happening. We also think that if you use relative links, everything will be fine.

    All the best,
    Georgi
    the Telerik team

    Check out Telerik Trainer, the state of the art learning tool for Telerik products.
Register for webinar
5 posts, 0 answered